Thibault Soubiran
Thibault Soubiran
Upvote for this issue: Temurin images based on Ubuntu Jammy are now also vulnerable to Openssl 3.0 high severity vulnerabilities: CVE-2022-3602 and CVE-2022-3786 💣 [(USN-5710-1)](https://ubuntu.com/security/notices/USN-5710-1)
To follow up, I just noticed that latest images (8, 11 and 17) have been rebuilt yesterday and are no more vulnerable to vulnerabilities mentioned here (including Openssl ones). I...
My main point about creating this issue is that LLDAP will actually become a minimum viable option for users that have simple needs and are looking for an easy drop-in...
> > [it should] .. check passwords against breached password lists or dictionaries > > and ... > > > HIBP lookup may be useful as well, but my humble...
I was able to test this template on different Pulse Secure and Invanti instances and it seems to work well.
Hey @airween, Thanks for creating this issue, I would like to share my experience here. I am using a fresh installation of modsecurity v3.0.11, compiled with nginx sources. I faced...
Hello @martinhsv, here is a report from our side. **Configuration** : nginx 1.23.4 with modsecurity 3.0.9 (Ubuntu 20.04.6), coreruleset-3.3.4 with few custom rules. 197 servers blocks in nginx configs with...
Hey @martinhsv, modsec library has been built with `./configure --with-pcre2` so PCRE2.
@martinhsv any clue about what can be one or multiple causes of this memory leak ?
The exploit has been published by @leesh3288 and can be found here : https://gist.github.com/leesh3288/e4aa7b90417b0b0ac7bcd5b09ac7d3bd